https://community.isc2.org/t5/Threats/Vulnerabilities-Enable-Attackers-to-Spoof-Emails-From-20-Million/m-p/72769#M1320 <P>Dear All,</P><P>&nbsp;</P><P><SPAN>The CERT Coordination Center (CERT/CC) at Carnegie Mellon University has published a vulnerability note describing a pair of vulnerabilities that could be exploited to spoof email addresses. The issue affects multiple Simple Mail Transfer Protocol (SMTP) servers. CERT/CC writes, “An authenticated attacker using network or SMTP authentication can spoof the identity of a shared hosting facility, circumventing any DMARC policy and sender verification provided by a domain name owner.”</SPAN></P><P>&nbsp;</P><P><SPAN><A href="https://www.securityweek.com/vulnerabilities-enable-attackers-to-spoof-emails-from-20-million-domains/?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a" target="_blank" rel="noopener">https://www.securityweek.com/vulnerabilities-enable-attackers-to-spoof-emails-from-20-million-domains/?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a</A></SPAN></P><P>&nbsp;</P><P>&nbsp;</P> Sat, 03 Aug 2024 08:05:24 GMT Kyaw_Myo_Oo 2024-08-03T08:05:24Z https://community.isc2.org/t5/Threats/Vulnerabilities-Enable-Attackers-to-Spoof-Emails-From-20-Million/m-p/72769#M1320 <P>Dear All,</P><P>&nbsp;</P><P><SPAN>The CERT Coordination Center (CERT/CC) at Carnegie Mellon University has published a vulnerability note describing a pair of vulnerabilities that could be exploited to spoof email addresses. The issue affects multiple Simple Mail Transfer Protocol (SMTP) servers. CERT/CC writes, “An authenticated attacker using network or SMTP authentication can spoof the identity of a shared hosting facility, circumventing any DMARC policy and sender verification provided by a domain name owner.”</SPAN></P><P>&nbsp;</P><P><SPAN><A href="https://www.securityweek.com/vulnerabilities-enable-attackers-to-spoof-emails-from-20-million-domains/?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a" target="_blank" rel="noopener">https://www.securityweek.com/vulnerabilities-enable-attackers-to-spoof-emails-from-20-million-domains/?is=2e17210a000df3b23714ee0b7fabf90d53a139a7fd871f741a8f77fe7ad94a1a</A></SPAN></P><P>&nbsp;</P><P>&nbsp;</P> Sat, 03 Aug 2024 08:05:24 GMT https://community.isc2.org/t5/Threats/Vulnerabilities-Enable-Attackers-to-Spoof-Emails-From-20-Million/m-p/72769#M1320 Kyaw_Myo_Oo 2024-08-03T08:05:24Z https://community.isc2.org/t5/Threats/Vulnerabilities-Enable-Attackers-to-Spoof-Emails-From-20-Million/m-p/72776#M1321 <P>GuardIO Labs posted a detailed write-up on "Echospoofing" and a massive spam campaign that abused Proofpoint and M365 SMTP services to spoof DMARC/DKIM/SPF-verified sending domains.<BR /><BR />Read the details here:<BR /><A href="https://labs.guard.io/echospoofing-a-massive-phishing-campaign-exploiting-proofpoints-email-protection-to-dispatch-3dd6b5417db6" target="_blank" rel="noopener">https://labs.guard.io/echospoofing-a-massive-phishing-campaign-exploiting-proofpoints-email-protection-to-dispatch-3dd6b5417db6</A></P> Sat, 03 Aug 2024 16:41:09 GMT https://community.isc2.org/t5/Threats/Vulnerabilities-Enable-Attackers-to-Spoof-Emails-From-20-Million/m-p/72776#M1321 Edwin_CybSecGuy 2024-08-03T16:41:09Z https://community.isc2.org/t5/Threats/Vulnerabilities-Enable-Attackers-to-Spoof-Emails-From-20-Million/m-p/72780#M1322 <P>Thanks for sharing&nbsp;<a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/1009247755">@Edwin_CybSecGuy</a>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Sun, 04 Aug 2024 01:41:28 GMT https://community.isc2.org/t5/Threats/Vulnerabilities-Enable-Attackers-to-Spoof-Emails-From-20-Million/m-p/72780#M1322 Kyaw_Myo_Oo 2024-08-04T01:41:28Z